content/posts/understanding-srdi.md

@@ -7,7 +7,7 @@ tags = ['windows', 'srdi']
 categories = ['malware']
 +++
 
-Shellcode reflective DLL injection (sRDI) still stands as a relatively stealthy technique in the Windows malware scene despite its age. What differentiates it from simpler DLL injection methods is that it doesn't leave apparent traces to the targeted system's disk, which is why it has a chance to bypass basic defensive solutions relying on e.g. signature detection.
+In the ever-evolving landscape of malware, Shellcode Reflective DLL Injection (RDI) still stands as a formidable technique despite its age. What differentiates it from traditional DLL injection methods is that it doesn't leave apparent traces to the targeted filesystem, which is why it has a chance to bypass basic defensive solutions relying on behavior monitoring, heuristics, or signature-based detection.
 
 ## Steps
 

static/contact.txt

@@ -1,19 +1,19 @@
 -----BEGIN PGP SIGNED MESSAGE-----
 Hash: SHA512
 
-clearweb:   golfed.xyz, umbrella.haus
-onion:      golfed6fzytoktol4de4o4nerap3xuykhfm5makfzscib65df3khnpyd.onion
-pgp:        1530F5132A1228578D2B4168995EFD5C1B532B3E
-email:      hello at golfed.xyz
-matrix:     @ae:golfed.xyz
-signal:     xmr.02
+Clearweb:   golfed.xyz, umbrella.haus
+Onion:      golfed6fzytoktol4de4o4nerap3xuykhfm5makfzscib65df3khnpyd.onion
+PGP:        1530F5132A1228578D2B4168995EFD5C1B532B3E
+Email:      hello@golfed.xyz
+Matrix:     @ae:golfed.xyz
+Signal:     @xmr.02
 
-updated: 18/02/2025
+Updated: 29/11/2024
 
 -----BEGIN PGP SIGNATURE-----
 
-iHUEARYKAB0WIQQVMPUTKhIoV40rQWiZXv1cG1MrPgUCZ7RlwwAKCRCZXv1cG1Mr
-PvsLAP9v4JZJ1Flj/cwiFhTx5sEAcyD5unLcDKDgjXgymDwZvAD/QKNXwWzhnoHh
-tqwdF8C+zMuW4LuwEeUcdCQXx3fQkwQ=
-=Eo3p
+iHUEARYKAB0WIQQVMPUTKhIoV40rQWiZXv1cG1MrPgUCZ0mHzQAKCRCZXv1cG1Mr
+Pl6yAQCjFkLnaCH9f3BQgAsCwpmjmxQzcOsVoptf4eB08ZJNbAD/RH2Suz1CJSWe
+LTusruFyxPEbzDsT+jNvebZRY91A5gQ=
+=UfKa
 -----END PGP SIGNATURE-----